Job Purpose/summary
Responsible for Secure Architectural design, blueprints, and patterns across multiple technology platforms within the business. Engages with stakeholders across these platforms to ensure their solutions are engineered to be secure by design and in line with Maersk security policies and approved patterns.
You will have in-depth knowledge of various Cyber Security areas such as Network Security, Cloud Security, Endpoint Security, Vulnerability Management, Risk Management, Baseline & compliance etc. You will make decision on behalf of the organization regarding Cyber Security solution architecture and implementation.
You will have the ability to clearly document your decision-making in the form of requirements capture that leads to a finalized design. You will have the ability to collaborate with stakeholders of any level across the organization to understand their points of view and sell your ideas, concepts, and architectural knowledge for the benefit of the organization.
You will work collaboratively with the Platform Architecture teams to review their roadmaps and ensure the Cyber Security Product roadmap as defined by Cyber Security product owners reflect alignment with respect to secure design.
You will push the intrinsic Cyber security agenda and co-create the relevant security roadmaps which will include understanding current posture, deciphering where the organization needs to get to in the short, medium and long term and how it will get there via architecture decision-making and collaboration. You will also be responsible for horizon scanning for new technology and security techniques.
Key responsibilities
- Lead and define the enterprise multi-cloud security architecture strategy across AWS, Azure, and GCP. Govern unified security standards, baselines, and guardrails to ensure consistent posture.
- Own the security architecture and governance of enterprise Cloud Landing Zones, ensuring alignment with approved Architecture Design Records (ADRs).
- Architect enterprise Identity and Access Management (IAM) strategies, including privileged access management, federation, and zero-trust identity models across hybrid environments.
- Define and standardize security controls for cloud-native platforms, including Kubernetes, containers, serverless workloads, APIs, and CI/CD pipelines.
- Champion Security-by-Design and Zero Trust principles, ensuring secure patterns are embedded across cloud platforms and solution designs.
- Lead cloud security architecture reviews and threat modeling activities (ADR/CAR) to assess, challenge, and endorse solution security posture, providing findings and recommendations.
- Design secure architecture patterns addressing regulatory compliance, data sovereignty, and regional cloud requirements for sensitive and regulated workloads.
- Drive adoption of DevSecOps practices, integrating automated security controls, policy-as-code, and scalable guardrails into cloud deployment pipelines.
- Act as the trusted security advisor to Enterprise Architecture, Platform Engineering, and DevOps leadership on secure cloud adoption and transformation initiatives.
- Provide technical leadership and mentorship to architects and engineers, advancing enterprise cloud security maturity and best practices.
- Drive continuous improvement of enterprise cloud security posture through architecture modernization and security capability maturity initiatives.
- Ensure cloud security architectures securely support emerging workloads, including AI/ML platforms and target="_blank">accommodationrequests@maersk.com.